CVE-2012-2170 in WebSphere Application Serverالمعلومات

الملخص

بحسب MITRE

The Application Snoop Servlet in IBM WebSphere Application Server 7.0 before 7.0.0.23 does not properly restrict access, which allows remote attackers to obtain sensitive client and request information via a direct request.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

04/04/2012

إفشاء

20/06/2012

الاعتدال

تمت الموافقة

إدخال

VDB-5476

CPE

جاهز

CWE

CWE-264 (مؤكد)

CVSS

4.3 (NVD)

EPSS

0.02394

KEV

لا

النشاطات

منخفض جدًا

القطاع

Finance, Lawfirm, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2170
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2170
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2170/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!